Azure Linux 3.0 Security Update: kernel (CVE-2024-39482)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39482 advisory. - In the Linux kernel, the following vulnerability has been resolved: bcache: fix variable length array abuse ...

Azure Linux 3.0 Security Update: cert-manager / influxdb / keda / libcontainers-common / packer (CVE-2024-6104)

The version of cert-manager / influxdb / keda / libcontainers-common / packer installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6104 advisory. - go-retryablehttp prior to 0.7.7 did not sanitize urls...

Azure Linux 3.0 Security Update: mysql (CVE-2024-7264)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-7264 advisory. - libcurl's ASN1 parser code has the GTime2str function, used for parsing an ASN.1 Generalized Time field. If...

Azure Linux 3.0 Security Update: heimdal / samba (CVE-2022-3116)

The version of heimdal / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3116 advisory. - The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42071)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42071 advisory. - In the Linux kernel, the following vulnerability has been resolved: ionic: use devconsumeskbany outside of...

Azure Linux 3.0 Security Update: c-ares / fluent-bit / grpc / nodejs / nodejs18 / python-gevent (CVE-2024-25629)

The version of c-ares / fluent-bit / grpc / nodejs / nodejs18 / python-gevent installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25629 advisory. - c-ares is a C library for asynchronous DNS requests...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47705)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47705 advisory. - In the Linux kernel, the following vulnerability has been resolved: block: fix potential invalid pointer...

Azure Linux 3.0 Security Update: libsoup (CVE-2024-52532)

The version of libsoup installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-52532 advisory. - GNOME libsoup before 3.6.1 has an infinite loop, and memory consumption. during the reading of certain...

Azure Linux 3.0 Security Update: python-pip / python-urllib3 / python3 (CVE-2023-45803)

The version of python-pip / python-urllib3 / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45803 advisory. - urllib3 is a user-friendly HTTP client library for Python. urllib3 previously...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42244)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42244 advisory. - In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resum...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-32621)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32621 advisory. - HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5HGread in H5HG.c called from...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42237)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42237 advisory. - In the Linux kernel, the following vulnerability has been resolved: firmware: csdsp: Validate payload length...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46685)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46685 advisory. - In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL...

Azure Linux 3.0 Security Update: qemu / qemu-kvm (CVE-2022-2962)

The version of qemu / qemu-kvm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2962 advisory. - A DMA reentrancy issue was found in the Tulip device emulation in QEMU. When Tulip reads or writes t...

Azure Linux 3.0 Security Update: kernel (CVE-2024-39484)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39484 advisory. - In the Linux kernel, the following vulnerability has been resolved: mmc: davinci: Don't strip remove functio...

Azure Linux 3.0 Security Update: jasper (CVE-2023-51257)

The version of jasper installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-51257 advisory. - An invalid memory write issue in Jasper-Software Jasper v.4.1.1 and before allows a local attacker to execut...

Azure Linux 3.0 Security Update: php (CVE-2024-11234)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11234 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, when using streams with configured...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-29160)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29160 advisory. - HDF5 through 1.14.3 contains a heap buffer overflow in H5HGcacheheapdeserialize, resulting in the corruption o...

Azure Linux 3.0 Security Update: bluez (CVE-2023-45866)

The version of bluez installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45866 advisory. - Bluetooth HID Hosts in BlueZ May permit an unauthenticated Peripheral role HID Device to initiate and establi...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46795)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46795 advisory. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: unset the binding mark of a reuse...